The attack involves a Kaseya product called VSA, which among other things lets small and medium-size businesses remotely monitor their computer systems and automatically take care of routine server maintenance and security updates. "We are in the process of formulating a staged return to service of our SaaS server farms with restricted functionality and a higher security posture (estimated in the next 24-48 hours but that is subject to change) on a geographic basis)," the company noted Sunday morning, referring to the Software as a Service server farms. The company is working with both the FBI and the US Cybersecurity and Infrastructure Agency to investigate the attack. Kaseya noted Sunday it had received no new reports of compromise since Saturday. Kaseya released a compromise detection tool on Saturday night to nearly 900 customers that requested it, the company said Sunday morning in an alert. On Sunday afternoon, Kaseya announced that it will attempt to start putting servers back online overnight in the UK, Europe and Asia and then do the same in North America on Monday afternoon. But even more companies - at least 36,000 - were indirectly affected by the attack because Kaseya advised all its customers to take their servers offline Friday and has not yet given them the go-ahead to go back online. Hundreds of companies, including a railway, pharmacy chain and grocery chain in Sweden, were directly hit by the supply-chain attack on software company Kaseya, which has continually posted alerts to its site since Friday. Following recent ransomware attacks that took down a major gas pipeline and a major meat processor in the US, a new assault has surfaced, this time hitting a Miami-based company that provides tech-management tools to customers worldwide.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |